Access control for object instances
US11870786B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Aug 15, 2022 |
| Grant date | Jan 9, 2024 |
| Priority date | — |
| Expiry date | Sep 18, 2042 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L67/025
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
The present disclosure involves systems, software, and computer implemented methods for access control for object instances. A method includes receiving, at a cloud application, a user request associated with a user. The user request corresponds to an instance of a first application artifact type. Role assignments for the user are retrieved from a cloud platform and a determination is made that the role assignments grant permission to the first application artifact type to the user. A determination is made that a first instance-based access policy exists for the first application artifact type. A determination is made regarding whether the first instance-based access policy grants permission for the user to access the instance. The user request is serviced in response to determining that the first instance-based access policy grants permission for the user to access the instance. The use request is denied in response to determining that the first instance-based access policy does not grant permission for the user to access the instance.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.